Community met GSoC 2015 participants via IRC

Channel statistics

Event started at 2015.06.04 17:00 CET
42 nick’s on channel (+1 joined later)
14 active participants (at least 1 comment)

Chat around 5 GSoC topics

htrap – My project is to create a Riak Destination for Syslog-ng:

Krishna_ – My project is – Syslog-ng server monitoring with mobile app:

battila7 – My project is: syslog-ng as a command line tool:

mamenyaka – I am working on the Qt syslog-ng configuration editor:

asdwsda – and my project is to extend java language binding for syslog-ng:

Short summary

Community members detailed their use case expectations, asked different questions and started brainstorming.

  • SHRREAK would be the next level of SHREK (Syslog-ng Riemann Elasticsearch Kibana) stack.
    A stands for Android for monitoring syslog-ng servers. Stat
    istics will be available also
    2nd R stands for Riak which would store events instead of ES (ES would be used only for indexing)
  • A feature proposal arrived – Qt config editor should be able to parse existing files
  • CLI example:

    throw-logs | syslog-ng-cli –parser db –dbparser /var/lib/pdb.xml –source stdin –destination stdout’

  • htrap blogs his experiences about GSoC: It turned out that cor edevelopers of syslog would welcome articles on
  • squid generated JSON parsing was discussed with syslog-ng meanwhile

insider 2015-03: GsoC; Hadoop; 3.7 documentation; kafka; grok;

Dear syslog-ng users,

This is the 40th issue of the syslog-ng Insider, a monthly newsletter that brings you syslog-ng-related news.


syslog-ng in Google Summer of Code 2015

This year we participate in GSoC again, with a focus on making
the life of our users and contributors easier. Our main projects for this year include:

  • Python and Java language bindings to make code contribution easier
  • Develop a Qt-based graphical configuration editor to help new users to get started
  • A data-flow visualization tool to help in debugging

If you are a student and willing to spend the summer coding syslog-ng, or know someone who could participate, check our detailed project and idea list.

You can reach mentors by direct e-mail, by IRC on channel #syslog-ng
on FreeNode, or on our mailing list.

syslog-ng Hadoop support

With the release of syslog-ng PE 5F3 support for Hadoop arrived. It will also be part of the upcoming syslog-ng OSE 3.7 release. This enables syslog-ng to write log messages to HDFS.

syslog-ng 3.7 beta is coming

The first beta of syslog-ng OSE 3.7 is expected to arrive in the coming weeks. It has many smaller and larger changes, like the Java destination is migrated from incubator to syslog-ng core.

insider 2014-09: 3.6 beta; eCSI; DevOps; anonymization; GSoC;

Dear syslog-ng users,

This is the 37th issue of the syslog-ng Insider, a monthly newsletter that brings you syslog-ng related news.


Beta testing of syslog-ng 3.6 started

Beta testing period of syslog-ng 3.6 started two weeks ago with a beta1 release. It was quickly followed by a beta2 release, fixing mostly portability. Some of the new features are coming from the syslog-ng incubator, like Riemann support or the graphite template function. The journal source and many enhancements to existing features are coming from the syslog-ng PE team. Also, the @cim prefix can be used as a local “rich” log transport on /dev/log, and messages will be parsed by the JSON parser if available.

Beta2 is already available in the FreeBSD ports in sysutils/syslog-ng-devel. For RPM distributions, check

BalaBit syslog-ng team takes over the syslog-ng OSE development

algernon, the full-time syslog-ng OSE developer at BalaBit decided to look for new challenges.
First of all, thank you very much for all your hard work, bugfixes nifty new features, and everything else you did for syslog-ng OSE! We all wish you the best, and hope you’ll have a great time outside BalaBit as well 🙂
To keep the development, maintenance, and releases of syslog-ng OSE on track, the developer team of syslog-ng Premium Edition will take over the tasks related to syslog-ng OSE: they will manage bugfixes, patches, pull requests, and also the general development of syslog-ng OSE. Naturally, this does not affect the current or future openness of syslog-ng OSE in any way: Your contribution is as welcome as ever.
For more details about this change, see algernon’s blog post.

eCSI training

BalaBit provides now a free training, which provides a fresh insight on logmanagement. The first level introduces the listener to compliance, planning an infrastructure and logs in forensics situations. Once your knowledge is tested, you can go to the next level and learn about IT security and eCSI.

syslog-ng, riemann, collectd-notifications, elasticsearch

How to build an event-based infrastructure to push structured messages to different subsystems for alerting, reporting and storage. Using syslog-ng, each message is normalized into a structured event, optionally correlated with other messages, and conditionally routed to systems. Read more at:

Data Privacy, Anonymization and Log Data

Strong data privacy laws are arriving slowly but surely in Europe, which also affects logging. Raw data contains too much information, on the other hand anonymized data does not have enough information to handle a security incident. Read about a possible solution and how syslog-ng can help.

Google Summer of Code: success

Google Summer of Code ended a few weeks ago. All of our students successfully completed their projects. We would like to thank for the hard work of students and their mentors, and Google for the opportunity!

You can read more about the completed projects.


Your feedback and news tips about the next issue is welcome at documentation(at)

insider 2014-08: EPEL; graphite; PCI DSS

Dear syslog-ng users,

This is the 36th issue of the syslog-ng Insider, a monthly newsletter that brings you syslog-ng related news.


EPEL 7 now contains syslog-ng

RHEL 7 was released over a month ago and CentOS 7 not much later, but one piece of software was still missing: syslog-ng. Not any more. EPEL, which stands for Extra Packages for Enterprise Linux, is a software collection containing additional packages for Enterprise Linux and derivatives. Now its latest version, EPEL 7 also contains syslog-ng, version 3.5.

Introducing syslog-ng PE 5F1

The latest version of the syslog-ng Premium Edition, 5F1, adds support for the popular NoSQL database MongoDB. Along with support for MongoDB, we have added support for Java Script Object Notation (JSON), a text-based open standard designed for human-readable data interchange.

Performance monitoring using syslog-ng and graphite

For most of its history, syslog-ng could only be used for collecting, processing and storing log messages. Not any more. The Redis and Riemann destinations are already a step into the direction of metrics-based monitoring, and the monitoring source combined with Graphite template support are the next.

Introducing syslog-ng store box 3F2

We recently released a new version of our log management appliance, the syslog-ng Store Box. 3F2 is the latest feature release and includes one major new feature and a major improvement to an existing one. First, we have added a RESTful API which opens up all sorts of possibilities for accessing log data in SSB. Second, we have revamped the search interface on the web-based user interface making searching and troubleshooting much easier.

syslog-ng incubator 0.3.3 released

The syslog-ng incubator is a set of tools and modules for syslog-ng, which are not (yet) available in the official release. This version of incubator works with the latest stable syslog-ng (v3.5.5+) and fixes many problems of the initial 0.3 incubator release.

Log management and the Verizon 2014 PCI Compliance Report

Recently, the eagerly anticipated Verizon Data Breach Investigations Report for 2014 was published. With more than 63,000 security incidents, 1,300 confirmed data breaches and 50 contributing global organizations, it provides the most comprehensive insight to state of IT security around the world. Drawing on data from the Data Breach Investigation Report, Verizon also publishes a lesser known but very interesting report on the state of compliance of with the Payment Card Industry Data Security Standard (PCI DSS), perhaps the most widely-adopted security standards globally. Read, what requirements PCI DSS has towards log management/.


Your feedback and news tips about the next issue is welcome at documentation(at)